Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/GHZYds4CelqK4KUZOvRVcqiUnE8.roa
File: GHZYds4CelqK4KUZOvRVcqiUnE8.roa (raw, json)
Hash identifier: gx/a9Hh6siJhlvMubCKIICx65PdeJdjQn7xSD81g3VE=
Subject key identifier: 18:76:58:76:CE:02:7A:5A:8A:E0:A5:19:3A:F4:55:72:A8:94:9C:4F
Certificate issuer: /CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Certificate serial: 1F0426DA
Authority key identifier: 22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/GHZYds4CelqK4KUZOvRVcqiUnE8.roa
Signing time: Mon 13 Jun 2022 20:28:45 +0000
ROA not before: Mon 13 Jun 2022 20:28:45 +0000
ROA not after: Sat 01 Jul 2023 00:00:00 +0000
asID: 209371
IP address blocks: 194.180.50.0/24 maxlen: 24
185.218.139.0/24 maxlen: 24
194.169.175.0/24 maxlen: 24
37.139.131.0/24 maxlen: 24
37.139.130.0/24 maxlen: 24
94.154.172.0/24 maxlen: 24
193.35.18.0/24 maxlen: 24
109.206.239.0/24 maxlen: 24
178.215.226.0/24 maxlen: 24
178.215.224.0/24 maxlen: 24
178.215.225.0/24 maxlen: 24
178.215.227.0/24 maxlen: 24
178.215.239.0/24 maxlen: 24
178.215.237.0/24 maxlen: 24
80.76.51.0/24 maxlen: 24
185.252.176.0/24 maxlen: 24
193.47.63.0/24 maxlen: 24
193.47.62.0/24 maxlen: 24
194.48.248.0/24 maxlen: 24
193.37.47.0/24 maxlen: 24
194.48.251.0/24 maxlen: 24
185.216.68.0/24 maxlen: 24
79.110.50.0/24 maxlen: 24
79.110.48.0/24 maxlen: 24
79.110.49.0/24 maxlen: 24
87.120.84.0/24 maxlen: 24
87.120.87.0/24 maxlen: 24
83.219.97.0/24 maxlen: 24
83.219.98.0/24 maxlen: 24
83.219.96.0/24 maxlen: 24
83.219.99.0/24 maxlen: 24
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 520365786 (0x1f0426da)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=22c4ac3e3c43d70d05349c815baadd38ad775e9d
Validity
Not Before: Jun 13 20:28:45 2022 GMT
Not After : Jul 1 00:00:00 2023 GMT
Subject: CN=18765876ce027a5a8ae0a5193af45572a8949c4f
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:d9:97:90:ba:07:f3:70:72:5f:4f:cf:aa:00:76:
97:b9:67:f9:0b:70:b8:4b:c1:5b:79:6c:83:28:56:
96:93:ba:1f:9e:87:8e:03:f4:95:67:65:36:62:cd:
56:29:46:93:fe:ad:66:01:f4:4c:89:bf:ae:00:21:
68:11:ba:4d:69:c7:9c:ad:34:9d:0f:88:79:68:c1:
4c:5e:2c:39:4e:31:37:15:c5:3a:c0:85:c3:b2:9f:
42:71:cb:1a:38:59:43:90:d1:5f:cd:09:f3:ae:4b:
63:9b:61:5d:22:6c:78:6d:e6:15:38:81:94:e5:b4:
21:8f:35:c8:52:83:a9:4b:92:ac:e9:62:67:f2:21:
85:d9:f1:b5:40:76:98:bd:df:20:62:c2:18:06:62:
5d:39:75:5b:ba:c4:45:46:aa:7b:78:63:6b:b2:40:
e4:38:fe:18:1f:d8:4a:58:aa:10:72:6e:0a:b8:3a:
06:14:b4:27:00:1e:70:81:30:60:bf:52:cb:a4:17:
19:e4:f8:4b:9e:65:bd:23:c4:d8:56:88:2f:5c:c6:
c2:a2:8b:a2:95:62:85:41:7e:0d:98:97:28:8d:96:
86:fd:44:f5:73:cf:b6:8e:e3:c3:61:d5:7c:95:c4:
be:d8:68:22:af:43:3a:e1:bc:0d:34:aa:50:f5:dc:
92:75
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
18:76:58:76:CE:02:7A:5A:8A:E0:A5:19:3A:F4:55:72:A8:94:9C:4F
X509v3 Authority Key Identifier:
keyid:22:C4:AC:3E:3C:43:D7:0D:05:34:9C:81:5B:AA:DD:38:AD:77:5E:9D
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/IsSsPjxD1w0FNJyBW6rdOK13Xp0.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/GHZYds4CelqK4KUZOvRVcqiUnE8.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/03/913a3a-f550-46f0-acc7-cd3ca5975712/1/IsSsPjxD1w0FNJyBW6rdOK13Xp0.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
37.139.130.0/23
79.110.48.0-79.110.50.255
80.76.51.0/24
83.219.96.0/22
87.120.84.0/24
87.120.87.0/24
94.154.172.0/24
109.206.239.0/24
178.215.224.0/22
178.215.237.0/24
178.215.239.0/24
185.216.68.0/24
185.218.139.0/24
185.252.176.0/24
193.35.18.0/24
193.37.47.0/24
193.47.62.0/23
194.48.248.0/24
194.48.251.0/24
194.169.175.0/24
194.180.50.0/24
Signature Algorithm: sha256WithRSAEncryption
2f:46:51:96:f6:6c:a3:c1:46:5c:50:1e:a8:a5:df:8b:61:d5:
02:04:60:f9:5f:32:bb:11:ce:15:16:b4:ba:64:4d:23:1d:aa:
02:ee:5e:de:25:47:5c:85:51:2c:a0:48:b5:a6:28:c9:5a:3e:
55:e6:cc:f6:e3:88:6f:7f:a4:5c:f0:6e:bf:d1:c2:d9:9b:59:
ad:76:3e:79:e6:44:2f:f1:89:72:0b:de:65:48:7c:06:24:a8:
27:b2:e6:53:c7:15:09:fb:91:48:bf:63:ec:21:75:b3:ab:5b:
34:37:4c:e3:21:e6:d4:ba:aa:46:14:65:2c:f2:0d:1a:b9:76:
03:c3:31:59:9b:a7:03:3a:5c:01:dc:5b:f8:ae:84:ca:31:b3:
3d:ff:2e:03:02:2c:29:39:2c:4a:c0:ff:96:6c:a0:e5:0f:64:
a9:a2:a3:29:f9:13:c7:b7:a3:99:b5:6d:97:f0:09:fd:af:83:
b5:9e:37:68:57:6f:e9:19:02:33:b6:ed:02:89:d6:46:08:a0:
bc:a2:58:5b:e6:e6:7e:03:ee:f7:0e:5c:d3:7b:b9:8f:e3:c9:
26:16:de:2c:69:2c:0c:f8:73:04:87:b2:d1:c8:7a:21:5e:a6:
cc:5d:e9:b4:19:c7:43:eb:8d:52:71:6c:f1:a3:6a:64:d9:ce:
19:34:39:b0
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 18:50:28 2024 by rpki-client on console-ams.rpki-client.org